package com.platform.util;
import com.alibaba.druid.support.json.JSONUtils;
import com.alibaba.fastjson.JSONObject;
import com.platform.utils.JsonUtil;
import org.apache.commons.codec.binary.Base64;

import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import java.security.AlgorithmParameters;
import java.security.Key;
import java.security.Security;

/**
 * @author xiaoqiang
 * @Description 参考博客找不到了--------------
 * @date 2019/5/7 15:44
 */
public class AESUtils {

  // 算法名
  public static final String KEY_NAME = "AES";
  // 加解密算法/模式/填充方式
  // ECB模式只用密钥即可对数据进行加密解密，CBC模式需要添加一个iv
  public static final String CIPHER_ALGORITHM = "AES/CBC/PKCS7Padding";

  private static org.bouncycastle.jce.provider.BouncyCastleProvider bouncyCastleProvider = null;

  /**
   * 微信 数据解密<br/>
   * 对称解密使用的算法为 AES-128-CBC，数据采用PKCS#7填充<br/>
   * 对称解密的目标密文:encrypted=Base64_Decode(encryptData)<br/>
   * 对称解密秘钥:key = Base64_Decode(session_key),aeskey是16字节<br/>
   * 对称解密算法初始向量:iv = Base64_Decode(iv),同样是16字节<br/>
   *
   * @param encrypted 目标密文
   * @param session_key 会话ID
   * @param iv 加密算法的初始向量
   */
  public static JSONObject wxDecrypt(String encrypted, String session_key, String iv) {
    String json = null;
    byte[] encrypted64 = Base64.decodeBase64(encrypted);
    byte[] key64 = Base64.decodeBase64(session_key);
    byte[] iv64 = Base64.decodeBase64(iv);
    byte[] data;
    try {
      init();
      json = new String(decrypt(encrypted64, key64, generateIV(iv64)));
    } catch (Exception e) {
      System.out.println("解密微信手机号失败:" + e.getMessage());
    }
    return JSONObject.parseObject(json);
  }

  /**
   * 初始化密钥
   */
  public static void init() throws Exception {
    Security.addProvider(getInstance());
    KeyGenerator.getInstance(KEY_NAME).init(128);
  }

  /**
   * 生成iv
   */
  public static AlgorithmParameters generateIV(byte[] iv) throws Exception {
    // iv 为一个 16 字节的数组，这里采用和 iOS 端一样的构造方法，数据全为0
    // Arrays.fill(iv, (byte) 0x00);
    AlgorithmParameters params = AlgorithmParameters.getInstance(KEY_NAME);
    params.init(new IvParameterSpec(iv));
    return params;
  }

  /**
   * 生成解密
   */
  public static byte[] decrypt(byte[] encryptedData, byte[] keyBytes, AlgorithmParameters iv)
      throws Exception {
    Key key = new SecretKeySpec(keyBytes, KEY_NAME);
    Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM);
    // 设置为解密模式
    cipher.init(Cipher.DECRYPT_MODE, key, iv);
    return cipher.doFinal(encryptedData);
  }


  public static synchronized org.bouncycastle.jce.provider.BouncyCastleProvider getInstance() {
    if (bouncyCastleProvider == null) {
      bouncyCastleProvider = new org.bouncycastle.jce.provider.BouncyCastleProvider();
    }
    return bouncyCastleProvider;
  }

  public static void main(String[] args) {
    JSONObject jsonObject = wxDecrypt(
        "LkZU3movDd2M2cRSRAN/CQPSVf7kpHcmM61veuCk0Z9YETXasejeeJgTJ/JuHl4Jwvoal9pUAsEpLY8p0PFWRVBiTb4IaM9ovH41mCM1XbUlEw+0Trd2WYxN2HjVDfe9LZPGHISdhe0Sin3lHw9++3dqgTdfOL7j/jebq6YSvZnXK5Z6o/q+Tk8giBUI4Z7WHIHJUntbaAcUrJ5QUMJCEQ==",
        "",
        "5Rr3WPGviufwey63O0SzAQ==");
    System.out.println(jsonObject);


  }



}
